单声道的HttpListener客户端证书 [英] Mono HttpListener client certificate

问题描述

我已经用的HttpListener的服务器。它的工作原理完全不使用SSL，但SSL一些奇怪的事情发生了。

I have created a server using HttpListener. It works perfect without SSL, but with SSL something strange happens.

我已经安装使用证书httpcfg，甚至我自己的程序，它正确安装，监听器启动，提供HTTPS请求，但始终要求提供客户端证书。

I have installed the certificate using httpcfg and even with my own program, it installs correctly, the listener starts and serves HTTPS requests, but always asks for a client certificate.

它不会发生在Windows / .NET，只在Linux /单（我使用的版本3.4。 0），很烦人，我不希望用户在每次他试图登录一个客户端证书时问。

It does not happens on Windows/.net, only with Linux/mono (I'm using ver 3.4.0) and is very annoying, I don't want the user to be asked each time he tries to log in for a client certificate.

这是一个单声道或错误有没有什么办法来禁用客户端证书协商？

Is this a mono bug or is there any way to disable the client certificate negotiation?

感谢。

推荐答案

我有同样的问题。我已经发现的是，这是在单声道硬编码。在 MCS /班/系统/ System.Net/HttpConnection.cs ，当的 SslServerStream的构造被调用时，你会发现，在 requestClientCertificate 是硬编码到真正。

I'm having the same problem. What I've discovered is that this is hardcoded in Mono. In mcs/class/System/System.Net/HttpConnection.cs, when the constructor of SslServerStream is called, you will notice that the requestClientCertificate is hardcoded to true.

我碰到的试图改变这个硬编码的值这个PR 假，但它目前的半拒绝因我宁愿没有改变一个硬编码的值对于另外一个硬编码值

I came across this PR that attempts to change this hardcoded value to false, however it's currently semi-rejected due to "I rather not change one hardcoded value for another hardcoded value."

[更新]我刚才意识到的您的（OP）是PR的作者：）

[Update] And I just now realized you (OP) are the author of the PR :)

这篇关于单声道的HttpListener客户端证书的文章就介绍到这了，希望我们推荐的答案对大家有所帮助，也希望大家多多支持IT屋！